Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2024-24300
- EPSS 0.16%
- Published 14.02.2024 23:15:08
- Last modified 25.03.2025 15:18:50
4ipnet EAP-767 v3.42.00 is vulnerable to Incorrect Access Control. The device uses the same set of credentials, regardless of how many times a user logs in, the content of the cookie remains unchanged.
8.8
CVE-2024-24301
- EPSS 3.09%
- Published 14.02.2024 23:15:08
- Last modified 25.03.2025 15:18:58
Command Injection vulnerability discovered in 4ipnet EAP-767 device v3.42.00 within the web interface of the device allows attackers with valid credentials to inject arbitrary shell commands to be executed by the device with root privileges.
1